Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
File: AyhzUYaXwj6cPjemRrrRISNa10Q.mft (raw, json)
Hash identifier: QHBls7cWjqJw2KhUFuVZcVAOpiSidgD2TQpxi7fR9eE=
Subject key identifier: 29:12:B9:20:65:60:EB:DF:3D:13:87:26:F7:8E:C9:EF:23:64:1C:6D
Authority key identifier: 03:28:73:51:86:97:C2:3E:9C:3E:37:A6:46:BA:D1:21:23:5A:D7:44
Certificate issuer: /CN=032873518697c23e9c3e37a646bad121235ad744
Certificate serial: 019745F8C9FE3EAE88230209FAF9EE17564B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyhzUYaXwj6cPjemRrrRISNa10Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 16:00:21 +0000
Manifest this update: Fri 06 Jun 2025 16:00:21 +0000
Manifest next update: Sat 07 Jun 2025 16:00:21 +0000
Files and hashes: 1: AyhzUYaXwj6cPjemRrrRISNa10Q.crl (hash: D337UgcLIF0UbKKhgsy88ROCDh2ejRJ39ZFmS8Sz8Ig=)
2: V2K-oZleXeUaxCNtSI8GJz8R-T8.roa (hash: BfQ/+c4yu8OqgDpQuVge6IJ1WfNKM140JuABCwOq8WA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyhzUYaXwj6cPjemRrrRISNa10Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f8:c9:fe:3e:ae:88:23:02:09:fa:f9:ee:17:56:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032873518697c23e9c3e37a646bad121235ad744
Validity
Not Before: Jun 6 16:00:21 2025 GMT
Not After : Jun 7 16:00:21 2025 GMT
Subject: CN=2912b9206560ebdf3d138726f78ec9ef23641c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:af:b9:8e:31:55:51:8b:d3:2c:58:61:85:21:
93:95:b4:24:cd:d3:71:45:e0:d4:5a:cf:19:5e:f1:
bb:39:16:48:4d:e8:37:4c:b3:b5:1a:52:78:37:bb:
c8:6c:17:2f:3a:ca:bc:b5:d9:1c:e8:58:cb:ef:e0:
a3:25:1f:82:ef:34:77:9d:05:00:c6:e6:4d:d5:a5:
fa:e0:f8:24:bd:52:8e:96:aa:88:c7:47:84:ae:71:
59:b2:53:57:4f:60:62:67:5e:8e:98:27:72:80:81:
da:51:02:db:da:a9:4c:f1:8f:73:e5:7e:74:02:7a:
c6:b7:1f:c8:8b:92:e5:6c:7e:fd:90:2b:4c:74:e1:
64:7a:3a:69:26:72:00:70:09:4f:0c:9b:4f:ce:c1:
47:75:96:c5:57:c7:e3:5f:87:09:0b:42:b2:d4:1f:
0b:8a:f8:ff:33:7b:25:a5:d2:76:82:bf:ea:aa:cf:
02:85:98:4f:18:e2:99:d5:b9:9c:00:21:aa:f0:2f:
a7:0e:cd:a2:9f:68:91:02:3a:2c:62:a3:fb:5e:46:
95:e1:af:7d:12:06:a7:d2:8c:71:af:0c:05:09:5f:
95:22:88:a3:e2:c9:4c:4b:78:2d:b7:19:15:0b:27:
76:18:e3:4b:fe:0e:6c:5f:ef:1b:01:ca:a7:92:c8:
b0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:12:B9:20:65:60:EB:DF:3D:13:87:26:F7:8E:C9:EF:23:64:1C:6D
X509v3 Authority Key Identifier:
keyid:03:28:73:51:86:97:C2:3E:9C:3E:37:A6:46:BA:D1:21:23:5A:D7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyhzUYaXwj6cPjemRrrRISNa10Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/ebd05e-f607-4bfb-a42b-127008924eed/1/AyhzUYaXwj6cPjemRrrRISNa10Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:17:73:53:43:03:f3:3e:a1:9e:61:0a:7c:ed:c6:60:a1:89:
78:34:3a:d9:b2:fc:ac:3f:85:a0:cc:b6:e3:d4:55:bc:49:68:
4d:e4:95:1d:4b:06:61:06:da:65:c5:de:ee:1e:04:ba:86:0d:
9b:5c:a6:9b:95:7c:b2:cf:a9:0c:9c:06:68:bd:d3:f9:40:f0:
5d:42:29:eb:31:33:12:6e:f4:20:ce:72:e8:21:57:d3:18:ab:
1a:a4:7f:78:b1:9f:0c:fd:9c:00:6d:ca:69:9a:af:91:3f:99:
7b:b8:65:47:e3:86:6b:7f:6f:90:5d:fe:96:6a:52:ed:87:da:
51:a0:e0:78:e9:e7:7c:8c:f0:d8:18:e9:ef:1e:07:0f:50:97:
71:2f:25:1d:88:2c:10:e1:70:65:62:71:3b:e0:ff:90:a5:44:
cc:05:37:fd:84:12:bd:21:71:b4:7d:79:28:f1:a4:76:81:4e:
a1:37:1e:59:c8:49:16:93:9b:38:a7:62:18:1c:36:b3:c1:70:
bb:b7:ad:4e:e1:9c:14:dd:19:25:29:0d:e2:6f:c1:92:2d:70:
43:9b:b6:ab:28:68:42:f7:ce:f3:83:a5:2f:5e:f1:94:12:5a:
7d:76:7a:8c:d3:4f:ed:57:39:13:2a:26:bc:6b:0e:81:d4:e4:
5b:7f:07:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:24:02 2025 by rpki-client